User-Driven Access Control: Rethinking Permission ... - CiteSeerX

Extrait du fichier (au format texte) :

User-Driven Access Control:
Rethinking Permission Granting in Modern Operating Systems
Franziska Roesner, Tadayoshi Kohno
{franzi, yoshi}@cs.washington.edu
University of Washington

Alexander Moshchuk, Bryan Parno, Helen J. Wang
{alexmos, parno, helenw}@microsoft.com
Microsoft Research, Redmond

Crispin Cowan crispin@microsoft.com
Microsoft
Abstract

tionality and security for access to the user s data and resources. From a functionality standpoint, isolation inhibits the client-side manipulation of user data across arbitrary applications. For example, the isolation of web sites makes it difficult to share photos between two online providers
(e.g., Picasa and Flickr) without manually downloading and re-uploading them. (While two such applications can prenegotiate data exchanges through IPC channels or other APIs,
requiring every pair of applications used by a user to prenegotiate is inefficient or impossible.) From a security standpoint, existing access control mechanisms tend to be coarsegrained, abrasive, or inadequate. For instance, they require users to make out-of-context, uninformed decisions at install time via manifests [3, 6], or they unintelligently prompt users to determine their intent [5, 20].
Thus, a pressing open problem in these systems is how to allow users to grant applications access to user-owned resources spanning different isolation boundaries, defined as privacy-and cost-sensitive devices and sensors (such as the camera, GPS, or SMS capabilities), system services and settings (such as the contact list or clipboard), and user content stored with various applications (such as photos or documents). To address this problem, we propose user-driven access control, whereby the system captures user intent via authentic user actions in the context of applications.
In particular, we introduce access control gadgets (ACGs)
as an operating system technique to capture user intent. Each user-owned resource exposes UI elements called ACGs for applications to embed. The user s authentic UI interactions with an ACG grant the embedding application permission to access the corresponding resource. Our design ensures the display integrity of ACGs, resists tampering by malicious applications, and allows the system to translate authentic user input on the ACGs into permissions.
The ACG mechanism enables a permission granting system that minimizes unintended access by letting users grant permissions at the time of use (unlike the manifest model)
and minimizes the burden on users by implicitly extracting a

Modern client platforms, such as iOS, Android, Windows
Phone, Windows 8, and web browsers, run each application in an isolated environment with limited privileges. A pressing open problem in such systems is how to allow users to grant applications access to user-owned resources, e.g., to privacyand cost-sensitive devices like the camera or to user data residing in other applications. A key challenge is to enable such access in a way that is non-disruptive to users while still maintaining least-privilege restrictions on applications.
In this paper, we take the approach of user-driven access control, whereby permission granting is built into existing

Les promotions



MSR Quantum applications - Microsoft
MSR Quantum applications - Microsoft
23/08/2018 - www.microsoft.com
( What Can We Do with a Quantum Computer? ( Matthias Troyer  Station Q, ETH Zurich | 1 Classical computers have come a long way Antikythera mechanism ENIAC astronomical positions (1946) (100 BC) Kelvin s harmonic analyzer prediction of tides (1878) Difference Engine (1822) Is there anything that we cannot solve on future supercomputers? Titan, ORNL (2013) Matthias Troyer | | 2 How long will Moore s law continue? Do we see signs of the end of Moore s law? Can we go below 7nm...

DSCOVR: Randomized Primal-Dual Block Coordinate ... - Microsoft
DSCOVR: Randomized Primal-Dual Block Coordinate ... - Microsoft
23/08/2018 - www.microsoft.com
DSCOVR: Randomized Primal-Dual Block Coordinate Algorithms for Asynchronous Distributed Optimization lin.xiao@microsoft.com Lin Xiao Microsoft Research AI Redmond, WA 98052, USA weiyu@cs.cmu.edu Adams Wei Yu Machine Learning Department, Carnegie Mellon University Pittsburgh, PA 15213, USA qihang-lin@uiowa.edu Qihang Lin Tippie College of Business, The University of Iowa Iowa City, IA 52245, USA wzchen@microsoft.com Weizhu Chen Microsoft AI and Research Redmond, WA 98052, USA October 13,...

L'économie de la sécurité - Microsoft
L'économie de la sécurité - Microsoft
16/11/2016 - www.microsoft.com
nl y se Lect L économie de la sécurité Ces dernières années, la sécurité est devenue une priorité pour les pouvoirs publics et les entreprises. Crime organisé, terrorisme, interruption des chaînes d approvisionnement mondiales, virus informatiques  autant de menaces avec lesquelles il faut compter dans le monde d aujourd hui. D où l émergence d un marché des équipements et des services de sécurité de 100 milliards de dollars. Ce marché est alimenté par la demande croissante émanant...

Vers une approche simplifiée pour introduire le caractère ... - Microsoft
Vers une approche simplifiée pour introduire le caractère ... - Microsoft
23/11/2017 - www.microsoft.com
See discussions, stats, and author profiles for this publication at: https://www.researchgate.net/publication/262881208 Vers une approche simplifiée pour introduire le caractère incrémental dans les systèmes de dialogue Conference Paper · July 2014 CITATION READS 1 26 3 authors, including: Hatim Khouzaimi Romain Laroche Orange Labs / Laboratoire Informatique d'Avi & Microsoft Maluuba 12 PUBLICATIONS 42 CITATIONS 58 PUBLICATIONS 185 CITATIONS SEE PROFILE All content following this page was uploaded by Hatim Khouzaimi on 28 April 2015. The user has requested enhancement of the downloaded file. SEE PROFILE 21ème...

D6. 4: Final evaluation of CLASSiC TownInfo and ... - Microsoft
D6. 4: Final evaluation of CLASSiC TownInfo and ... - Microsoft
23/11/2017 - www.microsoft.com
See discussions, stats, and author profiles for this publication at: https://www.researchgate.net/publication/228835240 D6. 4: Final evaluation of CLASSiC TownInfo and Appointment Scheduling systems Article · May 2011 CITATIONS READS 15 56 11 authors, including: Helen Hastie Filip Jurcicek Heriot-Watt University Charles University in Prague 105 PUBLICATIONS 858 CITATIONS 55 PUBLICATIONS 439 CITATIONS SEE PROFILE SEE PROFILE Oliver Joseph Lemon Steve Young Heriot-Watt University University of Cambridge 323 PUBLICATIONS 3,678 CITATIONS 310 PUBLICATIONS 14,308 CITATIONS SEE PROFILE SEE PROFILE Some of the authors of this publication are also working on these related projects: MaDrIgAL: Multi-Dimensional Interaction management and Adaptive Learning View project ...

User-Driven Access Control: Rethinking Permission ... - CiteSeerX
User-Driven Access Control: Rethinking Permission ... - CiteSeerX
23/08/2018 - www.microsoft.com
User-Driven Access Control: Rethinking Permission Granting in Modern Operating Systems Franziska Roesner, Tadayoshi Kohno {franzi, yoshi}@cs.washington.edu University of Washington Alexander Moshchuk, Bryan Parno, Helen J. Wang {alexmos, parno, helenw}@microsoft.com Microsoft Research, Redmond Crispin Cowan crispin@microsoft.com Microsoft Abstract tionality and security for access to the user s data and resources. From a functionality standpoint, isolation inhibits the client-side manipulation...

1 Introduction - Microsoft
1 Introduction - Microsoft
11/04/2018 - www.microsoft.com
One-Way Accumulators: A Decentralized Alternative to Digital Signatures (Extended Abstract) Josh Benaloh Clarkson University Michael de Mare Giordano Automation Abstract This paper describes a simple candidate one-way hash function which satis es a quasi-commutative property that allows it to be used as an accumulator. This property allows protocols to be developed in which the need for a trusted central authority can be eliminated. Space-e cient distributed protocols are given for document time...

Architectures reconfigurables et traitement de proble`mes ... - Microsoft
Architectures reconfigurables et traitement de proble`mes ... - Microsoft
16/11/2016 - www.microsoft.com
RECHERCHE Architectures reconfigurables et traitement de proble`mes NP-difficiles : un nouveau domaine d application Youssef Hamadi    David Merceron  '  ' LIRMM, UMR 5506 CNRS/Universite´ Montpellier II 161, Rue Ada, 34392 Montpellier Cedex 5 hamadi@lirmm.fr ''' EURIWARE, 12-14 rue du fort de St-Cyr 78067 St Quentin-en-Yvelines Cedex damercer@euriware.fr RE´SUME´. L algorithme GSAT est un algorithme de recherche locale. Cette me´thode recherche la premie`re instanciation...
 
 

Move&Fun - Navigon
Move&Fun - Navigon
28/11/2016 - www.navigon.com
Move&Fun Manuel utilisateur Français Juin 2012 Le symbole représentant une poubelle barrée sur roues signifie que dans l'Union européenne, le produit doit faire l'objet d'une collecte sélective en fin de vie. Cette mesure s'applique non seulement à votre appareil mais également à tout autre accessoire caractérisé par ce symbole. Ne jetez pas ces produits dans les ordures ménagères non sujettes au tri sélectif. Impressum Garmin Würzburg GmbH Beethovenstraße 1a+b D-97080 Würzburg Les...

LED TV 16/9
LED TV 16/9
20/03/2012 - www.thomsontv.fr
32HT4253 LED TV 16/9 Spécifications du 32HT4253 Résolution : 1366 X 768 Luminosité : 350 cd/m2 Contraste dynamique : Mega Contrast Son : Stéréo 2 x 5 W Prêt pour la télévision numérique haute définition (Canal Ready *: Port CI+ compatible avec le mini-décodeur (ou module) CANAL READY permettant de recevoir les chaînes payantes du groupe CANAL+ via la TNT Connectique numérique : 3 HDMI - HDCP - 1 CMP Port USB Multimédia (vidéo haute définition, photo, musique) : 1 Péritel : 1 Entrée...

MONTER UNE OPTIQUE A MONTURE K
MONTER UNE OPTIQUE A MONTURE K
28/02/2018 - www.pentax.fr
MONTER UNE OPTIQUE A MONTURE K Vous pouvez monter une optique à monture K sur ce boîtier grâce à l adaptateur KQ. Lorsque vous utilisez une optique à monture K, la longueur focale doit être réglée manuellement pour certaines fonctions comme le système de stabilisation puisque la longueur focale ne peut être détectée automatiquement. 1- Assurez-vous que [Shake Reduction] soit réglé sur l appareil. ÿOnÿ et éteignez Pour plus d information, référez vous à Prendre des photos...

MacBook Air - Support - Apple
MacBook Air - Support - Apple
27/11/2014 - manuals.info.apple.com
Félicitations. Vous et votre MacBook Air êtes faits l un pour l autre. Bienvenue sur votre MacBook Air. www.apple.com/fr/macbookair E/S à haut débit Thunderbolt Connectez des appareil et écrans hautes performances. Caméra FaceTime intégrée Passez des appels vidéos vers les derniers iPad, iPhone, iPod touch ou Mac. Centre d aide thunderbolt Centre d aide facetime MacBook Air Cliquez n importe où Pincer pour zoomer Trackpad multi-touch Utilisez ce type de gestes pour contrôler...

Transformers Energon Signal Flare
Transformers Energon Signal Flare
05/04/2012 - www.hasbro.com
OMNICON TM 5+ AGE: EDAD OMNIMODUS SIGNAL FLARE TM 80227/80250 Asst. WARNING: CHOKING HAZARD-Small parts. Not for children under 3 years. INSTRUCTIONS INSTRUCCIONES NOTE: Some parts are made to detach if excessive force is applied and are designed to be re-attached if separation occurs. Adult supervision may be necessary for younger children. NOTA: Certaines pièces se détacheront sous une trop forte pression; dans un tel cas, il suffit de les réemboîter. La supervision d un adulte peut...

Getting started with Logitech® Fold-Up Keyboard
Getting started with Logitech® Fold-Up Keyboard
16/02/2012 - www.logitech.com
Getting started with Logitech® Fold-Up Keyboard for iPad 2 Logitech® Fold-Up Keyboard Getting started with Logitech® Fold-Up Keyboard for iPad 2 2 Logitech® Fold-Up Keyboard Contents English Français Nederlands www.logitech.com/support 4 10 16 Türkçe 39 22 28 43 3 Logitech® Fold-Up Keyboard Setup and turn on 1. Insert iPad 2 2. Open the keyboard Slide your iPad 2 into the tray. Make sure that the connector port is aligned with the connector opening on the tray. Push the iPad...